You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@jena.apache.org by "Andy Seaborne (Jira)" <ji...@apache.org> on 2021/12/10 13:01:00 UTC

[jira] [Assigned] (JENA-2211) upgrade log4j2 from 2.14.1 to 2.15.0

     [ https://issues.apache.org/jira/browse/JENA-2211?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andy Seaborne reassigned JENA-2211:
-----------------------------------

    Assignee: Andy Seaborne

> upgrade log4j2 from 2.14.1 to 2.15.0
> ------------------------------------
>
>                 Key: JENA-2211
>                 URL: https://issues.apache.org/jira/browse/JENA-2211
>             Project: Apache Jena
>          Issue Type: Dependency upgrade
>            Reporter: Øyvind Gjesdal
>            Assignee: Andy Seaborne
>            Priority: Critical
>
> There is CVE 2021-4228 for log4j2. Not sure how it affects the the different artifacts. https://github.com/advisories/GHSA-jfh8-c2jp-5v3q
>  



--
This message was sent by Atlassian Jira
(v8.20.1#820001)